A round- and computation-efficient three-party authenticated key exchange protocol

Chen, Tzung‐Her; Lee, Wei‐Bin; Chen, Hsing‐Bai

doi:10.1016/j.jss.2007.11.720

Cited by 49 publications

(50 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Chen et al [31] pointed out that to enhance the performance and reduce latency of an AKA protocol, the communication steps in the protocol should be as parallel as possible. To enhance the proposed protocol performance, a parallel version of the protocol is presented.…”

Section: Mutual Authentication and Key Agreement Phasementioning

confidence: 99%

See 1 more Smart Citation

Ephemeral-Secret-Leakage Secure ID-Based Three-Party Authenticated Key Agreement Protocol for Mobile Distributed Computing Environments

et al. 2018

View full text Add to dashboard Cite

Abstract:A three-party Authenticated Key Agreement (AKA) protocol in the distributed computing environment is a client that requests services from an application server through an authentication server. The authentication server is responsible for authenticating the participating entities and helping them to construct a common session key. Adopting the Key Transfer Authentication Protocol (KTAP) in such an environment, the authentication server is able to monitor the communication messages to prevent and trace network crime. However, the session key in the KTAP setting is created only by the authentication server and is vulnerable to the resilience of key control. On the other hand, with the rapid growth of network technologies, mobile devices are widely used by people to access servers in the Internet. Many AKA protocols for mobile devices have been proposed, however, most protocols are vulnerable to Ephemeral Secret Leakage (ESL) attacks which compromise the private keys of clients and the session key by an adversary from eavesdropped messages. This paper proposes a novel ESL-secure ID-based three-party AKA protocol for mobile distributed computing environments based on ESL-secure ID-based Authenticated Key Exchange (ID-AKE) protocol. The proposed protocol solves the key control problem in KTAP while retaining the advantages of preventing and tracing network crime in KTAP and also resists ESL attacks. The AVISPA tool simulation results confirm the correctness of the protocol security analysis. Furthermore, we present a parallel version of the proposed ESL-secure ID-based three-party AKA protocol that is communication-efficient.

show abstract

Section: Mutual Authentication and Key Agreement Phasementioning

confidence: 99%

“…Note that compared with TG add and T H , TG e , TG mul , T exp and TG H are more time-consuming [31]. The proposed protocol adopts an imbalanced computation technique and an online/offline computation technique to reduce the computational load for the client side.…”

Section: Performance Analysismentioning

confidence: 99%

Ephemeral-Secret-Leakage Secure ID-Based Three-Party Authenticated Key Agreement Protocol for Mobile Distributed Computing Environments

et al. 2018

View full text Add to dashboard Cite

show abstract

“…The first efficient three-party authenticated key exchange protocol based on PKC was proposed by Chen et al [5]. The scheme proposes low round complexity to achieve mutual authentication.…”

Section: *Author For Correspondencementioning

confidence: 99%

An ID-based authenticated three-party key exchange protocol

Mandal¹,

Mohanty²,

Majhi³

2017

TIS

View full text Add to dashboard Cite

“…In this subsection, we introduce Chen et al's authentication scheme [19] using Schnorr's self-verified signature concept [20] as follows. Suppose that a user A wants to login to a server S, and thus A must register to S by the following steps.…”

Section: An Efficient Authentication Scheme Using the Self-verified Dmentioning

confidence: 99%

“…In the proposed e-payment scheme, we adopt the concept of Chen et al's self-verified signature scheme [19] to accomplish the user authentication. However, Chen et al's scheme needs to compute modular exponentiation, which is a time-consuming operation for mobile devices, so it is not suitable for mobile commerce.…”

mentioning

confidence: 99%

A Low Computational-Cost Electronic Payment Scheme for Mobile Commerce with Large-Scale Mobile Users

Yang

Chang

2010

Wireless Pers Commun

View full text Add to dashboard Cite

The electronic transactions on wireless mobile networks, which are also called mobile commerce, become more and more popular in recent years. In mobile commerce, the electronic payment is the most important component and thus many electronic payment schemes for mobile commerce are proposed. However, these schemes need to maintain a large authentication table for a large amount of mobile users. In addition, these schemes have heavy computation loads so they are not suitable for low computational-ability mobile devices. To overcome the above drawbacks, we propose a low computation-cost electronic payment scheme for mobile commerce in this paper. The proposed scheme can be applied to large-scale mobile user environments without maintaining a large authentication table. Moreover, the proposed scheme has low computation loads for mobile users because the elliptic curve cryptography is adopted in the proposed scheme. Therefore, the proposed scheme is more efficient and practical than the related works.

show abstract

A round- and computation-efficient three-party authenticated key exchange protocol

Cited by 49 publications

References 15 publications

Ephemeral-Secret-Leakage Secure ID-Based Three-Party Authenticated Key Agreement Protocol for Mobile Distributed Computing Environments

Ephemeral-Secret-Leakage Secure ID-Based Three-Party Authenticated Key Agreement Protocol for Mobile Distributed Computing Environments

An ID-based authenticated three-party key exchange protocol

A Low Computational-Cost Electronic Payment Scheme for Mobile Commerce with Large-Scale Mobile Users

Contact Info

Product

Resources

About